Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/r7pylqF16WNvO3LApE2aavm2q-w.roa
File: r7pylqF16WNvO3LApE2aavm2q-w.roa (raw, json)
Hash identifier: PtXjmmKeEE0Cs85ynYAFnyuXGtCdZzzxCxj/a4IjvTw=
Subject key identifier: AF:BA:72:96:A1:75:E9:63:6F:3B:72:C0:A4:4D:9A:6A:F9:B6:AB:EC
Certificate issuer: /CN=10eedc33aa442907189f0b3c563836951fb185bb
Certificate serial: 09292539
Authority key identifier: 10:EE:DC:33:AA:44:29:07:18:9F:0B:3C:56:38:36:95:1F:B1:85:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/r7pylqF16WNvO3LApE2aavm2q-w.roa
Signing time: Sat 01 Jan 2022 13:54:37 +0000
ROA not before: Sat 01 Jan 2022 13:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206370
IP address blocks: 185.165.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153691449 (0x9292539)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10eedc33aa442907189f0b3c563836951fb185bb
Validity
Not Before: Jan 1 13:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afba7296a175e9636f3b72c0a44d9a6af9b6abec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:eb:d9:34:96:cb:18:76:10:de:78:e5:5d:
31:c0:2d:f5:41:85:20:f2:d8:09:05:6a:d4:eb:14:
ae:41:84:5c:e2:22:1c:34:8a:ee:ba:69:bb:02:0a:
6e:02:df:b2:14:83:b1:dc:b1:b3:d1:ce:d2:3d:9a:
a8:2e:4d:6c:e9:45:b8:36:77:8d:cd:08:7a:9c:53:
dc:01:04:3c:31:a1:bc:30:d4:36:79:75:3c:cf:4f:
f1:98:f8:81:b5:99:a5:10:15:7a:fd:89:f2:60:66:
9a:01:a6:7d:e0:56:79:1d:31:c0:20:c3:55:7a:cd:
df:0b:e5:3f:ba:2d:01:7a:29:0f:cf:fe:83:eb:30:
aa:9b:27:63:e1:49:e0:fa:96:7e:6e:5e:cd:4c:45:
ed:bc:34:7e:0e:60:75:85:38:34:c1:27:65:b7:83:
05:4e:ee:c7:e7:a7:35:c8:ca:a9:be:aa:ee:7c:01:
48:7c:9c:db:c5:33:11:4a:61:5b:fe:d3:43:0b:7e:
ea:e3:8c:49:4c:ec:87:93:ee:f1:0d:b9:cb:dd:64:
92:10:47:b3:43:da:eb:d2:f4:71:78:61:5f:3c:55:
57:84:40:68:63:ec:8c:f2:3a:81:58:66:ae:d3:20:
d1:13:cc:84:66:92:ca:c7:5e:67:55:37:61:14:71:
3e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BA:72:96:A1:75:E9:63:6F:3B:72:C0:A4:4D:9A:6A:F9:B6:AB:EC
X509v3 Authority Key Identifier:
keyid:10:EE:DC:33:AA:44:29:07:18:9F:0B:3C:56:38:36:95:1F:B1:85:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EO7cM6pEKQcYnws8Vjg2lR-xhbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/r7pylqF16WNvO3LApE2aavm2q-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/546c7e-d840-4e54-9223-534ebeef3389/1/EO7cM6pEKQcYnws8Vjg2lR-xhbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.223.0/24
Signature Algorithm: sha256WithRSAEncryption
99:99:8c:18:c1:5c:0b:ef:52:64:50:88:05:24:a6:87:2b:2a:
85:9c:74:3b:30:d2:db:07:36:94:cf:8a:78:75:82:e1:9f:42:
03:2f:2e:cb:0e:76:4f:40:8d:e4:5f:6b:33:ad:12:3e:f8:ec:
d9:9b:95:ef:9a:bd:92:67:89:68:5b:cc:be:4f:1b:64:76:95:
61:69:bf:0d:30:73:ec:c5:4a:1e:bf:c5:21:c8:1f:f6:e4:98:
16:71:9b:df:d8:41:1d:45:62:89:5d:2f:c0:38:7f:9b:f7:9a:
55:65:6e:4d:aa:f2:95:6f:bc:0a:72:6c:cb:6c:82:e4:82:67:
79:d5:76:41:50:f5:00:74:2f:b1:04:bb:0e:97:7f:56:30:08:
7f:f2:12:b4:1b:d8:be:06:85:11:1a:58:df:ae:79:4a:8f:95:
d0:22:73:9f:3c:36:3d:6f:29:07:5d:d4:e9:b5:64:39:44:0e:
99:8f:aa:4d:43:c2:dc:28:53:6c:81:fb:94:a0:eb:60:8f:78:
61:44:b3:49:76:fa:90:68:01:2c:9c:0e:8a:1b:ef:3e:42:7b:
8f:46:d9:ae:db:2c:ec:4c:f8:0b:24:c1:c6:1b:6f:2e:0e:f7:
85:a2:45:35:f1:f2:96:d6:ca:1f:2d:c1:c2:00:e4:48:ae:67:
fd:1b:48:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:21 2023 by rpki-client on console-ams.rpki-client.org